This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/BwYkdZop4LfVcsQVgrky2aIlIX4.roa File: BwYkdZop4LfVcsQVgrky2aIlIX4.roa (raw, json) Hash identifier: /Oi14aBcEjwNAEOQ7H90tj2pA4FVuDXPniFiDKqahKI= Subject key identifier: 07:06:24:75:9A:29:E0:B7:D5:72:C4:15:82:B9:32:D9:A2:25:21:7E Certificate issuer: /CN=4ee52752a81bdfe0a401f9a261d79fee4b617115 Certificate serial: 019B7F15B2CEDFFAC5D4E5A88C28E0588675 Authority key identifier: 4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/BwYkdZop4LfVcsQVgrky2aIlIX4.roa Signing time: Fri 02 Jan 2026 14:21:27 +0000 ROA not before: Fri 02 Jan 2026 14:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8303 IP address blocks: 149.219.0.0/16 maxlen: 16 149.219.249.0/24 maxlen: 24 149.219.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.mft rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b2:ce:df:fa:c5:d4:e5:a8:8c:28:e0:58:86:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee52752a81bdfe0a401f9a261d79fee4b617115 Validity Not Before: Jan 2 14:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=070624759a29e0b7d572c41582b932d9a225217e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b6:63:c2:95:4f:84:9e:de:46:59:37:94:a3: 56:82:ed:ab:01:28:93:dd:6a:6b:a8:2a:29:4e:8f: e9:74:be:66:b8:58:0a:3c:a8:0a:9c:29:7e:41:29: 59:22:29:16:9c:88:12:eb:6d:47:36:76:a7:22:dd: 9f:f9:fe:61:d1:cd:61:9f:4b:fb:3e:7c:f9:8e:3c: 6e:0b:d7:e5:dd:85:08:d4:55:a2:ec:66:b6:a9:22: d8:5b:e1:2f:c3:5f:2b:7e:25:aa:a7:e2:2b:2e:69: ff:e3:4e:e9:2e:2e:df:44:ea:44:3f:9d:a9:19:aa: a5:66:55:9c:12:6f:01:f7:2d:49:fe:82:57:8e:4c: 14:f7:e7:96:30:a1:44:7f:07:cd:68:67:1c:2f:51: 3e:16:75:06:97:a2:45:06:87:c1:90:ec:76:81:b6: 5f:33:14:fd:db:d2:a0:57:b4:7b:da:27:44:6a:eb: 8c:c8:8c:12:87:fd:4b:c3:0d:fc:66:cd:1c:58:e3: a0:71:25:0f:76:59:b7:f3:8c:ff:76:3f:cd:60:1a: 1b:29:da:be:b7:d2:2d:0a:5e:0b:95:80:6a:31:bc: 19:98:7e:1c:d6:46:ae:70:21:08:9b:28:9b:06:1f: a4:6b:39:95:dd:30:96:c3:e1:53:bc:64:82:4b:2e: 1d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:06:24:75:9A:29:E0:B7:D5:72:C4:15:82:B9:32:D9:A2:25:21:7E X509v3 Authority Key Identifier: keyid:4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/BwYkdZop4LfVcsQVgrky2aIlIX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:cd:38:b7:be:8c:5f:0f:fd:a4:85:2d:a5:b9:51:cf:ca:3b: a6:ad:a6:5b:0f:eb:62:8e:f5:02:be:85:76:61:a5:a1:96:cc: 4c:7e:4e:e8:01:79:c1:05:52:c0:6c:7a:92:72:91:80:cf:9f: 65:48:e7:9e:1b:ff:25:78:ed:ed:63:17:7a:44:85:73:45:72: 82:9e:2a:3a:87:ce:b0:94:01:8d:9c:ba:42:d6:16:51:53:e3: 27:f8:51:af:01:29:ed:49:e2:09:aa:f3:77:19:4b:1c:42:05: 27:13:29:e5:2d:85:24:21:c9:67:ea:e1:87:b2:b4:5c:04:bc: 70:ab:ca:ba:29:b1:b2:f5:bd:11:75:04:6a:6b:e0:b7:b7:99: 2a:cd:fe:20:be:7c:01:86:f7:34:16:61:51:e8:d5:bc:ba:b4: ba:ac:1c:df:0a:d9:38:4e:c6:96:85:d3:f2:3f:c2:8c:ac:ff: 80:a5:2c:5b:38:a3:b8:9e:cb:26:b0:c1:97:b1:a7:e1:35:e8: ee:f8:e5:90:80:80:70:a8:77:4d:f6:53:7a:d9:8b:6d:b2:0f: dd:db:44:b5:1e:f8:0c:38:bc:c9:87:29:7a:0a:75:e3:b8:fe: 50:b5:30:41:0a:4f:c3:00:56:26:cd:a1:5c:92:be:81:d6:b4: ce:37:42:0c -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt/FbLO3/rF1OWojCjgWIZ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTUyNzUyYTgxYmRmZTBhNDAxZjlhMjYxZDc5ZmVlNGI2 MTcxMTUwHhcNMjYwMTAyMTQyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzA2MjQ3NTlhMjllMGI3ZDU3MmM0MTU4MmI5MzJkOWEyMjUyMTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bZjwpVPhJ7eRlk3lKNWgu2rASiT 3WprqCopTo/pdL5muFgKPKgKnCl+QSlZIikWnIgS621HNnanIt2f+f5h0c1hn0v7 Pnz5jjxuC9fl3YUI1FWi7Ga2qSLYW+Evw18rfiWqp+IrLmn/407pLi7fROpEP52p GaqlZlWcEm8B9y1J/oJXjkwU9+eWMKFEfwfNaGccL1E+FnUGl6JFBofBkOx2gbZf MxT929KgV7R72idEauuMyIwSh/1Lww38Zs0cWOOgcSUPdlm384z/dj/NYBobKdq+ t9ItCl4LlYBqMbwZmH4c1kaucCEImyibBh+kazmV3TCWw+FTvGSCSy4dMwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFAcGJHWaKeC31XLEFYK5MtmiJSF+MB8GA1UdIwQY MBaAFE7lJ1KoG9/gpAH5omHXn+5LYXEVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVVblVxZ2IzLUNrQWZtaVlkZWY3a3RoY1JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zMWUwZDQtMzVjZS00ZDAyLTk3MzQt ZDc4ZmI5N2Y5ODI4LzEvQndZa2Rab3A0TGZWY3NRVmdya3kyYUlsSVg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8zMWUwZDQtMzVjZS00ZDAyLTk3MzQtZDc4ZmI5N2Y5ODI4 LzEvVHVVblVxZ2IzLUNrQWZtaVlkZWY3a3RoY1JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAldswDQYJ KoZIhvcNAQELBQADggEBABbNOLe+jF8P/aSFLaW5Uc/KO6atplsP62KO9QK+hXZh paGWzEx+TugBecEFUsBsepJykYDPn2VI554b/yV47e1jF3pEhXNFcoKeKjqHzrCU AY2cukLWFlFT4yf4Ua8BKe1J4gmq83cZSxxCBScTKeUthSQhyWfq4YeytFwEvHCr yropsbL1vRF1BGpr4Le3mSrN/iC+fAGG9zQWYVHo1by6tLqsHN8K2ThOxpaF0/I/ woys/4ClLFs4o7ieyyawwZexp+E16O745ZCAgHCod032U3rZi22yD93bRLUe+Aw4 vMmHKXoKdeO4/lC1MEEKT8MAVibNoVySvoHWtM43Qgw= -----END CERTIFICATE-----Generated at Tue Feb 10 00:01:54 2026 by rpki-client